Friday, December 11, 2015

For whatever reason the cluster-maps widget began todistribute ads via their feed.As I have strong no-ads policy here, I was forced to deleteit. Thats a bit unfortunate as I really liked it andit was a cool widget to see where visitors came from.Wrong move!

If anyone knows how I could disable the ads w/odisabling the entire cluster-maps widget or knows aboutan ad-free alternative to it, please leave me a comment.

Thursday, December 10, 2015

o deniable personas: opmsg now supports OTR-style messages that are signed and integrity protected but still deniable so your peer cannot proof you wrote a certain message. Nothing in the message format changes and you can use deniable messages as any other ones. Please check the README about this topic.o Its now possible to specify more than one -E target persona to support Cc/Bcc of emails. Please note the slight mutt config changes: '%r' vs. %r if you are going to use Cc (also checkREADME).

Thursday, December 3, 2015

We at opmsg team take security very serious. Really.So at times we end up digging in underlying libs whichwe use, to understand entropy and key generation.Since we take security so serious (really), we are very Naziabout entropy. If we find anything that might be an issueor could be an issue if used in certain environments,we take all necessary actions to protect you.So this time we inform you, our valued customer, thatusage of libressl in certain Linux environments couldbe dangerous with regard to key generation. In nestedcontainer environments (cloud!) the state of the PRNGmay be cloned and there is nothing you, our valuedcustomer, can do about it via the libcrypto API.Thats why we, who take security very serious, informedthe libressl team and proposed a solution.PoC and solution may be found here. Please note thatthis is different from the CLONE_PID issue in pastwhich allowed for reuse of pids but is no longer possibleon recent Linux kernels.Beside that, opmsg team acknowledges time and effort libressldevelopers invest into the project and found libresslcode clean and mature. We continue supporting and recommenduse of libressl in opmsg.